In the left panel go to Protecting Your System, then Setting Up Protection Based on Application. In the right panel you will see "How to Set Permissions by Application" and "Advanced Application Configuration".

You should already have an entry for Bittornado in the Applications window. So choose it, then click on Advanced.

Leave the "The Trusted IPs" box empty

Check "Act as Client" and "Act as Server"

Leave all "Remoter Server Ports" and "Local Ports" fields empty

Check "Allow during Screensaver Mode" if you have one

I think ICMP traffic is not necessary, so you can uncheck it

Uncheck "Enable Scheduling"

This allows Bittornado to initiate and accept connections, but will give you not the highest security. To improve your settings, you can set specific ports in the "Remote Server Ports" fields, but unfortunately you can not specify if you want only TCP or UDP communication at this page. So you have different choices now:

Specify the ports at this page and create an advance rule to allow only TCP communications or

Create an advanced rule which specifies the ports and the type.

To specify the ports on this page:

Enter 6881-6899 in the TCP field under "Remote Server Ports"

Enter the same in the UDP field. UDP is not used by Bittornado, but if you leave it blank, the firewall will allow all UDP ports

If you want to setup a advanced rule, read the topic Configuring Advanced Rules for Security on the above Sygate site and post if you have questions.

Note, that you only have to open as much ports as you want to run instances of Bittornado simultanously. Also check the preferences in Bittornado, so the port settings match with your firewall rules.

The first time bittornado tries to access the net, sygate will ask you to allow/deny or set a specific rule, afterwards you will have an entry for bittornado (btdownloadgui.exe) on the application list.

You can try it, e.g. 16881-16899. Also check that bittornado uses the same ports you have opened in your firewall. If you don't specify any ports in sygate, all ports are allowed for the application the rule applies to.

I'm pretty sure I don't(don't have XP anyway). Changing the ports doesn't work. Even turning off the firewall doesn't fix it, the test torrent still says that I'm firewalled/NAT'd. I don't even know what NAT'd is >_>

NAT means Network Address Translation. There are private IPs (LAN) and public IPs (Internet) and a NAT translates between these two types of addresses, so a LAN can have access to the Internet. Because a NAT is also a security unit, access from the Internet to the LAN is not allowed per default, you have to allow it with specific port forwarding or DMZ setups. (This is typical for routers. NATs can also translate between different LANs).

If you get the error message "firewalles/NAT'd", the communication on the given IP/port has been blocked or the IP does not belong to you at all.